To prevent unauthorized access to a network feature, multiple levels of authentication are required by utilizing a biometric authentication application that can verify access based on an authentication configuration that, for example, includes biometric data associated with a user. Requiring additional authentication to one or more network features or settings while allowing one or more other network features or settings to have less authentication provides a quality of experience for every user with access to the application while maintaining enhanced security to those network features that may be key/sensitive or require additional security. Additionally, using biometric data to perform the additional level of authentication ensures that a particular user seeking access to key or sensitive network features or settings of a network is the authorized user and not another user that has gained access to a network device associated with the authorized user.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
2. The method of claim 1, wherein the previously stored biometric data is received from a biometric repository.
Biometric authentication systems verify user identities using unique biological traits such as fingerprints, facial features, or iris patterns. A challenge in these systems is efficiently managing and retrieving biometric data for authentication, especially when dealing with large-scale databases or distributed repositories. Existing solutions often require direct access to centralized databases, which can introduce latency, security risks, or scalability issues. This invention addresses these challenges by providing a method for biometric authentication that retrieves previously stored biometric data from a biometric repository. The repository acts as a centralized or distributed storage system where biometric templates are securely stored and managed. When a user initiates authentication, the system accesses the repository to fetch the relevant biometric data for comparison with the user's current biometric input. This approach improves efficiency by decoupling the authentication process from direct database access, allowing for faster retrieval and reduced system load. Additionally, it enhances security by centralizing biometric data management, reducing the risk of unauthorized access or data breaches. The method is particularly useful in large-scale applications such as border control, financial transactions, or enterprise access systems where reliable and scalable biometric verification is critical.
3. The method of claim 1, wherein the authentication level is associated with a plurality of biometric types.
A method for enhancing authentication security by associating multiple biometric types with a single authentication level. The method involves using biometric data from different sources, such as fingerprints, facial recognition, or iris scans, to verify user identity. Each biometric type is linked to a predefined authentication level, allowing flexible and robust identity verification. The system processes the biometric data to determine if it meets the required authentication criteria, ensuring secure access to systems or services. This approach improves security by reducing reliance on a single biometric modality, making it harder for unauthorized users to bypass authentication. The method can be applied in various security-sensitive applications, including financial transactions, access control, and personal device unlocking. By integrating multiple biometric types, the system provides a more reliable and adaptable authentication mechanism compared to traditional single-biometric systems.
4. The method of claim 1, wherein the plurality of biometric types comprises any of a voice scan, a fingerprint, a retinal scan, a one-time password (OTP), a facial recognition, or a combination thereof.
This invention relates to a biometric authentication system designed to enhance security by utilizing multiple biometric identifiers. The system addresses the limitations of single-factor authentication, which is vulnerable to spoofing, theft, or unauthorized access. By integrating diverse biometric types, the system improves accuracy and reduces the risk of fraudulent access. The method involves collecting and verifying multiple biometric data points from a user, such as voice scans, fingerprints, retinal scans, one-time passwords (OTPs), or facial recognition. These biometric types can be used individually or in combination to authenticate identity. The system dynamically selects or requires specific biometric inputs based on security context, user behavior, or risk assessment. For example, high-risk transactions may trigger additional biometric verifications, while routine access may rely on a single factor. The system also includes mechanisms to detect and mitigate fraud, such as liveness detection to distinguish real biometric inputs from spoofed ones. It may also incorporate adaptive authentication, adjusting the required biometric factors based on real-time risk analysis. This multi-layered approach ensures robust security while maintaining usability. The invention is applicable in various fields, including financial services, healthcare, and secure access control, where high-assurance authentication is critical. By leveraging multiple biometric modalities, the system provides a more secure and flexible authentication framework compared to traditional single-factor methods.
7. The method of claim 1, wherein the request is for creating an authentication configuration, wherein the authentication configuration is associated with at least one of the one or more features.
This invention relates to authentication systems, specifically methods for creating and managing authentication configurations within a software or security system. The problem addressed is the need for flexible and scalable authentication mechanisms that can be dynamically configured to support different features or services within a system. The method involves processing a request to create an authentication configuration, which is then associated with one or more features of the system. The authentication configuration defines the authentication requirements, such as authentication factors (e.g., passwords, biometrics, tokens) or policies (e.g., multi-factor authentication, single sign-on), that must be satisfied for a user to access a particular feature. The configuration ensures that only authenticated users with the appropriate credentials or permissions can interact with the associated features, enhancing security while allowing customization based on feature-specific needs. The system may include a user interface or API for submitting the request, which specifies the authentication parameters and the features to which the configuration applies. Once created, the authentication configuration is stored and enforced by the system, ensuring consistent and secure access control. This approach allows administrators to define and modify authentication rules without requiring extensive system-wide changes, improving adaptability and security management.
11. The biometric repository of claim 8, wherein the authentication level is associated with a plurality of biometric types.
A biometric repository system is designed to securely store and manage biometric data for authentication purposes. The system addresses the challenge of balancing security and usability by dynamically adjusting authentication requirements based on context, such as the sensitivity of the data being accessed or the environment in which authentication occurs. The repository supports multiple authentication levels, each linked to different biometric types, such as fingerprints, facial recognition, or iris scans. This allows the system to enforce stricter authentication for high-security operations while permitting faster, less intrusive methods for routine access. The repository also integrates with external systems to verify biometric data against stored templates, ensuring accurate and reliable authentication. Additionally, the system may include features like liveness detection to prevent spoofing and adaptive authentication policies that adjust based on risk factors. By supporting a variety of biometric types, the repository enhances flexibility and security, accommodating different user needs and scenarios while maintaining robust protection against unauthorized access.
12. The biometric repository of claim 11, wherein the plurality of biometric types comprises any of a voice scan, a fingerprint, a retinal scan, a one-time password (OTP), a facial recognition, or a combination thereof.
A biometric repository system stores and manages multiple types of biometric data for authentication purposes. The system includes a database configured to store biometric templates derived from various biometric inputs, such as voice scans, fingerprints, retinal scans, one-time passwords (OTPs), facial recognition data, or any combination of these. The repository allows for the secure storage and retrieval of these biometric templates, enabling authentication systems to verify user identities based on the stored data. The inclusion of multiple biometric types enhances security by providing redundant or alternative authentication methods, reducing reliance on a single biometric modality. This approach improves accuracy and reliability in identity verification processes, particularly in applications requiring high-security standards, such as financial transactions, access control, or secure communications. The system may also support dynamic updates to biometric templates, ensuring that the repository remains current and accurate over time. By integrating diverse biometric inputs, the repository addresses challenges associated with spoofing, environmental variations, and user convenience, offering a robust solution for modern authentication needs.
14. The biometric repository of claim 8, wherein the biometric repository is remote from the client device.
A biometric repository system stores and manages biometric data for authentication purposes. The system addresses security and privacy concerns by securely storing biometric templates, such as fingerprints, facial recognition data, or iris scans, in a centralized database. This allows multiple client devices to access the repository for authentication without storing sensitive biometric data locally, reducing the risk of unauthorized access or data breaches. The biometric repository is designed to be remote from the client devices, meaning it operates on a separate server or cloud-based infrastructure. This separation enhances security by isolating biometric data from the devices that use it, minimizing exposure to potential attacks. The repository may include encryption, access controls, and audit logging to ensure data integrity and compliance with privacy regulations. The system may also support multi-factor authentication, where biometric verification is combined with other authentication methods, such as passwords or tokens, for added security. Additionally, the repository can be integrated with various applications, such as mobile banking, secure access systems, or healthcare portals, to provide seamless and secure authentication across different platforms. The remote nature of the repository allows for centralized updates, maintenance, and scalability, ensuring reliable and efficient biometric authentication services.
17. The non-transitory computer-readable medium of claim 15, wherein the authentication level is associated with a plurality of biometric types.
A system and method for enhancing authentication security by associating multiple biometric types with different authentication levels. The invention addresses the need for robust and flexible authentication mechanisms in digital systems, particularly where varying levels of security are required based on the sensitivity of the accessed data or operations. The system captures and processes biometric data from users, such as fingerprints, facial recognition, or voice patterns, and assigns distinct authentication levels to each biometric type. These levels determine the access permissions granted to the user, ensuring that higher-security actions require more stringent biometric verification. The system dynamically adjusts authentication requirements based on the context, such as the user's location, device, or the nature of the requested operation. By integrating multiple biometric types, the system provides a scalable and adaptable security framework that balances usability and protection. The invention also includes mechanisms to verify the integrity of biometric data and prevent unauthorized access through spoofing or replay attacks. This approach improves security in applications like financial transactions, healthcare systems, and enterprise access control, where different operations may demand varying degrees of authentication rigor.
18. The non-transitory computer-readable medium of claim 15, wherein the plurality of biometric types comprises any of a voice scan, a fingerprint, a retinal scan, a one-time password (OTP), a facial recognition, or a combination thereof.
This invention relates to a system for secure authentication using multiple biometric and non-biometric verification methods. The system enhances security by requiring users to provide multiple forms of identification, reducing the risk of unauthorized access. The authentication process involves collecting and analyzing different biometric data types, such as voice scans, fingerprints, retinal scans, facial recognition, and one-time passwords (OTPs). These methods can be used individually or in combination to verify a user's identity. The system processes the biometric data through specialized algorithms to ensure accuracy and reliability. By integrating multiple verification techniques, the system provides a robust defense against fraud and unauthorized access, making it suitable for high-security applications like banking, healthcare, and government services. The invention improves upon traditional single-factor authentication by leveraging advanced biometric and cryptographic methods to strengthen security protocols.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
August 20, 2021
June 4, 2024
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.